A security flaw in AliExpress, an online marketplace that allows international consumers to make purchases on the Alibaba e-commerce platform, reportedly could have exposed personal information of millions of users to hackers.
The retail sector has been targeted and damaged by high-profile cyber security incursions, resulting in a loss of customer confidence and a move by retailers to upgrade security measures in the constant battle against criminal hackers.
A “phishing” attack using an email containing malware reportedly enabled hackers to gain access to Target’s computer network in 2013. According to the security blogger Brian Krebs, an employee at the HVAC vendor Fazio Mechanical in Sharpsburg, Penn. which includes Target among its clients, opened a fraudulent email that allowed hackers to enter Fazio’s network and take over a computer.
The hackers responsible for the recent Target data breach reportedly gained initial access to the retailer’s network using credentials stolen from a heating, ventilation and air conditioning (HVAC) vendor.